Amendments to the Claims 

1 Claim 1 (previously presented): A security container that secures a document component by 

2 encapsulating, within the security container, an encrypted version of the document component, an 

3 encrypted version of conditional logic for controlling operations on the document component, and 

4 key distribution information usable for controlling access to the document component, wherein: 

5 the encrypted version of the document component and the encrypted version of the 

6 conditional logic are both encrypted using a first key; 

7 the key distribution information comprises at least two key elements; and 

8 each key element comprises (i) an identification of a user, a user group, a process, or a 

9 process group that is authorized to access the document component; and (ii) an encrypted version 

10 of the first key, wherein the encrypted version of the first key comprises the first key encrypted 

1 1 using a second key that is usable only by the identified user, user group, process, or process group 

1 2 for decrypting the encrypted version of the first key, thereby enabling that user, user group, 

1 3 process, or process group to obtain the first key and use it for decrypting the document 

1 4 component and the conditional logic. 

1 Claim 2 (previously presented): The security container according to Claim 1, wherein the 

2 document component comprises a portion of a higher-level document and the security container 

3 secures the portion of the higher-level document. 

1 Claim 3 (original): The security container according to Claim 2, wherein the higher- level 

2 document has more than one portion secured by security containers. 
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1 Claim 4 (previously presented): A method of securing document content using security 

2 containers, comprising the step of encapsulating, within a security container, an encrypted version 

3 of a document component, an encrypted version of conditional logic for controlling operations on 

4 the document component, and key distribution information usable for controlling access to the 

5 document component, wherein: 

6 the encrypted version of the document component and the encrypted version of the 

7 conditional logic are both encrypted using a first key; 

8 the key distribution information comprises at least two key elements; and 

9 each key element comprises (i) an identification of a user, a group of users, a process, or 

1 0 group of a processes that is authorized to access the document component; and (ii) an encrypted 

1 1 version of the first key, wherein the encrypted version of the first key comprises the first key 

1 2 encrypted using a second key that is usable only by the identified user, user group, process, or 

1 3 process group for decrypting the encrypted version of the first key, thereby enabling that user, 

1 4 group of users, process, or groups of processes to obtain the first key and use it for decrypting the 

1 5 document component and the conditional logic. 

Claim 5 (canceled) 

1 Claim 6 (previously presented): The method according to Claim 4, wherein the first key 

2 comprises a symmetric key. 
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1 Claim 7 (previously presented): The method according to Claim 6, wherein the second key 

2 comprises, for each of the key elements, a public key associated with the identified user, process, 

3 group of users, or group of processes. 

Claim 8 (canceled) 

1 Claim 9 (original): The method according to Claim 4, wherein the conditional logic further 

2 controls access to the document component. 

1 Claim 10 (original): The method according to Claim 9, wherein the key distribution information 

2 further controls access to the conditional logic. 

Claim 1 1 (canceled) 

1 Claim 12 (original): The method according to Claim 4, wherein the security container is encoded 

2 in structured document format. 

1 Claim 13 (original): The method according to Claim 12, wherein the structured document format 

2 is Extensible Markup Language ("XML") format. 

Claim 14 (canceled) 
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Claim 15 (previously presented): The method according to Claim 4, wherein at least one of the 
key elements identifies a group of users and wherein the users in the group are determined 
dynamically, upon receiving a request to access to the document component. 



1 Claim 16 (previously presented): The method according to Claim 15, wherein the dynamic 

2 determination further comprises accessing a repository where the users in the group are identified. 

1 Claim 17 (previously presented): The method according to Claim 4, further comprising the steps 

2 of: 

3 receiving, from a requester, a request to access the document component; 

4 programmatically determining, using the key distribution information, whether the 

5 requester is authorized to access the document component by determining whether, in any 

6 selected one of the key elements, the requester is the identified user or the identified process or is 

7 a member of the identified group of users or the identified group of processes, and if so, 

8 performing steps of: 

9 decrypting the encrypted version of the first key from the selected one of the key 

1 0 elements using the second key usable by that requester, thereby obtaining the first key; 

1 1 decrypting the encrypted version of the conditional logic using the first key, 

1 2 thereby obtaining the conditional logic; 

1 3 decrypting the encrypted version of the document component using the first key, 

1 4 thereby obtaining the document component; and 

1 5 programmatically evaluating, using the conditional logic, whether the request can 
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be granted; and 

rejecting the request when the programmatically determining step has a negative result. 



1 Claim 18 (original): The method according to Claim 17, wherein the conditional logic evaluates 

2 at least one of: an identity of the requester; a device used by the requester; a context of the 

3 requester; a zone of an application used by the requester; a user profile of the requester; and a 

4 target destination of the request. 

1 Claim 19 (previously presented): A computer program product for securing document content 

2 using security containers, the computer program product embodied on one or more computer- 

3 readable media and comprising: 

4 computer-readable program code for receiving, from a requester, a request to access 

5 document content, wherein the document content is encapsulated as an encrypted version of a 

6 document component within a security container along with an encrypted version of conditional 

7 logic for controlling operations on the document component and key distribution information 

8 usable for controlling access to the document component, wherein: 

9 the encrypted version of the document component and the encrypted version of the 

1 0 conditional logic are both encrypted using a first key; 

1 1 the key distribution information comprises at least two key elements; and 

1 2 each key element comprises (i) an identification of a user, a group of users, a 

1 3 process, or group of a processes that is authorized to access the document component; and (ii) an 

1 4 encrypted version of the first key, wherein the encrypted version of the first key comprises the 
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1 5 first key encrypted using a second key that is usable only by the identified user, user group, 

1 6 process, or process group for decrypting the encrypted version of the first key, thereby enabling 

1 7 that user, group of users, process, or groups of processes to obtain the first key and use it for 

1 8 decrypting the document component and the conditional logic; 

1 9 computer-readable program code for programmatically determining, using the key 

2 0 distribution information, whether the requester is authorized to access the document component 

21 by determining whether, in any selected one of the key elements, the requester is the identified 

2 2 user or the identified process or is a member of the identified group of users or of the identified 

2 3 group of processes, and if so, performing steps of: 

2 4 decrypting the encrypted version of the first key from the selected one of the key 

2 5 elements using the second key usable by that requester, thereby obtaining the first key; 
2 6 decrypting the encrypted version of the conditional logic using the first key, 

2 7 thereby obtaining the conditional logic; 

2 8 decrypting the encrypted version of the document component using the first key, 

2 9 thereby obtaining the document component; and 

3 0 programmatically evaluating, using the conditional logic, whether the request can 
31 be granted; and 

3 2 computer-readable program code for rejecting the request when operation of the 

3 3 computer-readable program code for programmatically determining yields a negative result. 

1 Claim 20 (previously presented): A system for securing document content using security 

2 containers, comprising: 
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3 a security container that encapsulates an encrypted version of a document component, an 

4 encrypted version of conditional logic for controlling operations on the document component, and 

5 key distribution information usable for controlling access to the document component, wherein: 

6 the encrypted version of the document component and the encrypted version of the 

7 conditional logic are both encrypted using a first key; 

8 the key distribution information comprises at least two key elements; and 

9 each key element comprises (i) an identification of a user, a group of users, a 

1 0 process, or group of a processes that is authorized to access the document component; and (ii) an 

1 1 encrypted version of the first key, wherein the encrypted version of the first key comprises the 

1 2 first key encrypted using a second key that is usable only by the identified user, user group, 

1 3 process, or process group for decrypting the encrypted version of the first key, thereby enabling 

1 4 that user, group of users, process, or groups of processes to obtain the first key and use it for 

1 5 decrypting the document component and the conditional logic; 

1 6 means for receiving, from a requester, a request to access the document component; 

1 7 means for pro grammatically determining, using the key distribution information, whether 

1 8 the requester is authorized to access the document component by determining whether, in any 

1 9 selected one of the key elements, the requester is the identified user or the identified process or is 
2 0 a member of the identified group of users or of the identified group of processes, and if so, 

2 1 performing steps of: 

2 2 decrypting the encrypted version of the first key from the selected one of the key 

2 3 elements using the second key usable by that requester, thereby obtaining the first key; 
2 4 decrypting the encrypted version of the conditional logic using the first key, 
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2 5 thereby obtaining the conditional logic; 

2 6 decrypting the encrypted version of the document component using the first key, 

2 7 thereby obtaining the document component; and 

2 8 pro grammatically evaluating, using the conditional logic, whether the request can 

2 9 be granted; and 

3 0 means for rejecting the request when operation of the means for pro grammatically 
3 1 determining yields a negative result. 

1 Claim 21 (original): The system according to Claim 20, wherein the security container is 

2 embedded within a document. 

1 Claim 22 (original): The system according to Claim 20, wherein the security container 

2 encapsulates the document component on a system clipboard. 

1 Claim 23 (original): The system according to Claim 20, wherein the security container is placed 

2 on a user interface. 

1 Claim 24 (original): The system according to Claim 20, wherein the security container 

2 encapsulates the document component for exchange using interprocess communications. 

1 Claim 25 (original): The system according to Claim 20, wherein the security container 

2 encapsulates the document component for exchange using a messaging system. 
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1 Claim 26 (original): The system according to Claim 20, further comprising means for copying the 

2 document component to a target destination, wherein the means for copying copies the entire 

3 security container in order to copy the document component. 

Claims 27 - 32 (canceled) 

1 Claim 33 (new): The method according to Claim 4, wherein the encrypted version of the first key 

2 in each key element is further encrypted using a secret key known to code implementing the 

3 security containers. 

1 Claim 34 (new): The method according to Claim 4, wherein the encrypted version of the first key 

2 in each key element is encrypted using a secret key known to code implementing the security 

3 containers instead of using the second key, and the second key is then used to further encrypt a 

4 result of encrypting the first key using the secret key. 
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